JP2009260913A - Remote control apparatus, remote control program, remote control method, and, remote control system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a remote control apparatus for suppressing the risk of illegal remote control due to a third party other than a legitimate user. <P>SOLUTION: A remote control apparatus is configured to retrieve predetermined control information from a public network at predetermined time intervals. When it is authenticated, based on authentication information contained in the predetermined control information, that the predetermined control information is transmitted by a legitimate user, a home terminal connected to the remote control apparatus is activated. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a technology of a remote control device that controls a home information processing device from a remote terminal.

  A technology has been realized in which a user who is away from home uses a terminal such as a notebook personal computer to remotely control an information processing apparatus in a home via a public network such as the Internet.

  By the way, in order to accept a request for remote control of a home information processing apparatus from a user's terminal outside the office, it is necessary to open a router port to the public network.

  However, if an arbitrary port is opened to the public network, the risk of receiving unauthorized access through the opened port increases.

  Therefore, without opening any port for the public network, the home information processing device is allowed to access the mail server at a predetermined time interval, and remote control is performed on the information processing device from the mail stored in the mail server. When a requested control mail is searched, there is one that controls the information processing apparatus based on information included in the control mail.

  Japanese Patent Laid-Open No. 2004-151867 discloses a remote control for making a program recording reservation based on information included in an e-mail when the e-mail requesting the recording reservation is searched by accessing a mail server at a predetermined time interval. A reservation recording system is disclosed.

JP 2007-5962 A

  By the way, when remotely controlling a home information processing apparatus based on information included in a control mail requesting remote control, it is necessary to confirm that the control mail is a mail transmitted by a legitimate user. .

  This is because if a mail address for remotely controlling the information processing apparatus leaks, a control mail is sent to the mail address by a person other than a legitimate user, thereby creating a risk of unauthorized remote control. It is.

  Note that, in the above-described remote reservation recording system, recording reservation is possible even if it is not an email requested by a legitimate user.

  Accordingly, an object of the present invention is to provide a remote control device that can suppress the risk of unauthorized remote control by a third party other than a legitimate user.

  The first remote control device of the present invention is a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control device includes authentication information included in the predetermined control information. Based on this, when it is authenticated that the predetermined control information is control information transmitted by a legitimate user, a home terminal connected to the remote control device is activated.

  The second remote control device of the present invention is included in the predetermined control information searched by the server search means for searching predetermined control information from a server of the public network at predetermined time intervals, and the server search means. Based on the authentication information, authentication means for authenticating that the predetermined control information is control information transmitted by a valid user, and the predetermined control information is transmitted by a valid user by the authentication means. And starting means for starting a home terminal connected to the remote control device when the control information is authenticated.

  The third remote control device of the present invention comprises: access means for accessing a public network server at predetermined time intervals; and server search means for searching for predetermined control information from the server accessed by the access means. Authentication information acquisition means for acquiring authentication information included in the predetermined control information searched by the server search means, and the predetermined control based on the authentication information acquired by the authentication information acquisition means. Authentication means for determining that the information is control information transmitted by a legitimate user and the authentication means authenticating that the predetermined control information is control information transmitted by a legitimate user And an activation means for activating a home terminal connected to the remote control device.

  A fourth remote control device according to the present invention is a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control device includes authentication information included in the predetermined control information. Based on this, when it is authenticated that the predetermined control information is control information transmitted from a legitimate client terminal, an in-home terminal connected to the remote control device is activated.

  A fifth remote control device according to the present invention is included in the predetermined control information searched by the server search means for searching predetermined control information from a server of the public network at predetermined time intervals, and the server search means. Based on the authentication information, authentication means for authenticating that the predetermined control information is control information transmitted from a valid client terminal, and the predetermined control information is received from the valid client terminal by the authentication means. And an activation unit that activates a home terminal connected to the remote control device when the transmitted control information is authenticated.

  A first remote control program according to the present invention is a remote control program for a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control program is included in the predetermined control information. A home terminal connected to the remote control device is activated when it is authenticated that the predetermined control information is control information transmitted by a legitimate user based on the authentication information .

  The second remote control program of the present invention includes a search step for searching for predetermined control information from a public network server at predetermined time intervals, and authentication information included in the predetermined control information searched by the search step. An authentication step for determining that the predetermined control information is control information transmitted by a legitimate user, and a control in which the predetermined control information is transmitted by a legitimate user by the authentication step. An activation step of activating an in-home terminal connected to the remote control device when it is determined to be information.

  A third remote control program according to the present invention includes an access step of accessing a public network server at a predetermined time interval, and a server search step of searching predetermined control information from the server accessed by the access step. The authentication information acquisition step for acquiring the authentication information included in the predetermined control information searched by the server search step, and the predetermined control based on the authentication information acquired by the authentication information acquisition step. An authentication step for determining that the information is control information transmitted by a legitimate user, and the authentication step confirms that the predetermined control information is control information transmitted by a legitimate user. A home terminal connected to the remote control device. And having a starting means for moving.

  A fourth remote control program according to the present invention is a remote control program for a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control program is included in the predetermined control information. A home terminal connected to the remote control device is activated when it is authenticated that the predetermined control information is control information transmitted from a valid client terminal based on the authentication information To do.

  The fifth remote control program of the present invention includes a search step for searching for predetermined control information from a public network server at predetermined time intervals, and authentication information included in the predetermined control information searched by the search step. The predetermined control information is transmitted from a legitimate client terminal by the authentication step for determining that the predetermined control information is control information transmitted from a legitimate client terminal, and the authentication step. And a starting step of starting a home terminal connected to the remote control device when it is determined that the control information is determined.

  A first remote control method of the present invention is a remote control method by a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control method is included in the predetermined control information A home terminal connected to the remote control device is activated when it is authenticated that the predetermined control information is control information transmitted by a legitimate user based on the authentication information .

  A second remote control method of the present invention is a remote control method by a remote control device that retrieves predetermined control information from a public network at predetermined time intervals, and the remote control method is included in the predetermined control information. A home terminal connected to the remote control device is activated when it is authenticated that the predetermined control information is control information transmitted from a valid client terminal based on the authentication information To do.

  A first remote control system of the present invention includes a home terminal existing in a home, a remote control device capable of accessing a public network connected to the home terminal, a client terminal connected to the public network, A remote control system including a server connected to the public network, wherein the home terminal transmits predetermined control information requesting remote control of the home terminal to the server, and the remote control device The predetermined control information is retrieved from the server at a time interval of, and based on the authentication information included in the predetermined control information, it is authenticated that the predetermined control information is control information transmitted by a legitimate user. In this case, a home terminal connected to the remote control device is activated.

  A second remote control system of the present invention includes a home terminal existing in a home, a remote control device capable of accessing a public network connected to the home terminal, a client terminal connected to the public network, A remote control system including a server connected to the public network, wherein the home terminal transmits predetermined control information requesting remote control of the home terminal to the server, and the remote control device The predetermined control information is searched from the server at a time interval of, and the predetermined control information is control information transmitted from the valid client terminal based on authentication information included in the predetermined control information. When the authentication is performed, a home terminal connected to the remote control device is activated.

  ADVANTAGE OF THE INVENTION According to this invention, the remote control apparatus which can suppress the risk of the unauthorized remote control by third parties other than a legitimate user can be provided.

  The best mode for carrying out the present invention will be described below with reference to the drawings. FIG. 1 is a block diagram for explaining a remote control system according to the present embodiment.

  Referring to FIG. 1, the remote control system includes a client terminal 10, an information processing device 20, a mail server 30, a router 50, a remote control device 60, and the Internet 1000.

  First, the outline of the remote control system according to the present embodiment will be described. In this remote control system, a client terminal 10 operated by a user on the go sends a control mail to the mail server 30 via the Internet 1000. Further, the remote control device 60 present in the home periodically checks the mail server 30 for the presence or absence of the control mail. If there is a control mail, the remote control device 60 receives the control mail and receives the control mail based on the control mail. The information processing apparatus 20 existing in the system is turned on. This will be described in detail below.

  The client terminal 10 has a control unit 11. The control unit 11 logically includes the remote control unit 100 by reading and executing a program stored in the recording medium.

  The information processing apparatus 20 includes a control unit 21 and a storage unit 22. The control unit 21 logically includes an application control unit 200, a remote control unit 210, a camera control unit 220, and a recording control unit 230 by reading and executing a program stored in the recording medium.

  The router 50 is a communication device that connects the Internet 1000 and the remote control device 60 to each other.

  The remote control device 60 includes a control unit 61 and a storage unit 62. The control unit 61 logically includes the remote control means 600 by reading and executing a program stored in the recording medium. The remote control device 60 is a device built in the information processing device 20 such as a PCI-connected board.

  Note that the remote control device 60 is always operating, and is operating alone even when the information processing device 20 is in a stopped state or a sleep state.

  The Internet 1000 is a public network line to which the client terminal 10 and the router 50 are connected. Note that the client terminal 10 may be connected to the Internet 1000 via a router.

  Next, operation (first example) of the first embodiment of the present invention will be described with reference to FIG. FIG. 4 is a flowchart for explaining the operation of the remote control system according to the first embodiment of the present invention.

  Referring to FIG. 4, the remote control means 100 transmits a control mail 110 to the mail server in order to transmit control information to the remote control device 60 by an operation of the user of the client terminal 10 (step S1).

  At this time, the remote control unit 100 allows the user to input user authentication information described later.

  At this time, the remote control means 100 may encrypt the control mail 110 and transmit it.

  Here, an example of the content information of the control mail 110 in the present embodiment is shown in FIG. Referring to FIG. 7, the control mail 110 has date / time information, device information, authentication information, position information, information indicating a device identification number, and application control information as parameter information.

  The date / time information 001 is information indicating the date / time when the remote control unit 100 transmits the control mail 110.

  The device information 002 indicates unique information indicating the client terminal 10. For example, the MAC address of the client terminal 10 may be used.

  The authentication information 003 is information indicating the ID and password of the user who uses the client terminal 10.

  The position information 004 is information indicating the position of the client terminal 10. For example, the IP address used by the client terminal 10. Moreover, the information which shows the position of the client terminal 10 specified using GPS (Global Positioning System) may be sufficient.

  The device identification number 005 is identification information indicating a device that the user of the client terminal 10 wants to control from the outside.

  The application control information 006 is information indicating an application that the user of the client terminal 10 wants to control from the outside.

  While the remote control device 60 is always operating, the remote control means 600 repeatedly inquires the mail server 30 whether or not the control mail 110 addressed to the remote control device 60 is received every predetermined time during operation. Perform (step S2).

  When the inquiry is received in step S2, the mail server 30 checks whether the control mail 110 addressed to the remote control device 60 has been received (step S3).

  In step S3, when the mail server 30 confirms that the control mail 110 addressed to the remote control device 60 has been received, the mail server 30 remotely controls the received control mail 110 addressed to the remote control device 60. It transmits to the apparatus 60 (step S4).

  In the present embodiment, since the control mail from the client terminal 10 is received in step S1, the mail server 30 transmits the control mail to the remote control device 60.

  When the mail server 30 does not receive the control mail in response to the control mail reception inquiry from the remote control device 60 in step S2, the mail server 30 asks the remote control device 60. A message to that effect may be transmitted.

  In step S4, when the control mail 110 is transmitted and the remote control means 600 receives the control mail 110, the remote control means 600 analyzes the control mail 110 (step S5).

  Specifically, when the control mail 110 is encrypted, the remote control means 600 first decrypts the control mail 110. Then, after decryption, the parameter information held by the control mail 110 is acquired.

  Note that when the control mail 110 is transmitted without being encrypted, the decryption process is not performed.

  When the control mail 110 is analyzed in step S5, the remote control means 600 refers to the parameter of the authentication information and authenticates the client terminal 10 (step S6).

  In this embodiment, user authentication and device authentication are performed in step S6.

  First, regarding user authentication, in the present embodiment, referring to FIG. 7, specifically, the remote control unit 600 refers to authentication information 003 of the control mail 110 and sets the user ID “001”. The password “abc” is acquired and collated with user information registered in advance (stored in the storage unit 62). Here, the registration of the user whose user ID is “001” is confirmed, and it is confirmed whether or not the corresponding password matches “abc”.

  The user ID and the password are input when the user transmits the control mail 110 from the client terminal 10 to the remote control device 60.

  By the way, in this embodiment, user authentication is performed with the user ID and password, but authentication is performed with biometric information (for example, fingerprint authentication information, face authentication information, iris information, etc.). May be.

  Further, user authentication may be performed using information written on an ID card owned by the user.

  Next, regarding the device authentication, in the present embodiment, referring to FIG. 7, specifically, the remote control unit 600 refers to the device information 002 of the control mail 110 and registers in advance in the remote control device 60. The device information of the client terminal that can access the remote control device 60 is confirmed.

  In this way, by authenticating the user of the client terminal 10 or the like, the risk of being remotely operated by an unauthorized mail from a third party who is not a valid user is suppressed.

  Moreover, in order to suppress the risk of impersonation by an unauthorized user, the risk of being remotely operated by an unauthorized mail transmitted from a device not registered in the remote control device 60 is suppressed.

  If the authentication is successful in step S6 (step S6 / YES), the remote control means 600 refers to the device identification number 005 of the control mail 110 and transmits an activation request for the device specified in the control mail 110 ( Step S7).

  In the present embodiment, referring to FIG. 7, the device identification number 005 of the control mail 110 is “D001”.

  A table 120 as shown in FIG. 5 is stored in the storage unit 62, and a device whose device identification number is “D001” is the information processing device 20.

  Accordingly, the remote control unit 600 transmits an activation request to the information processing apparatus 20.

  By the way, after successful authentication of the client terminal 10 in step S6, the remote control means 600 displays device information of the remote control device 60 (device information indicates unique information indicating the remote control device 60. For example, remote control is performed. The remote control unit 100 refers to the transmitted device information of the remote control device 60 and is registered in advance in the client terminal 10. 10 may be confirmed to match the device information of the information processing apparatus connectable to the device 10.

  If authentication of the client terminal 10 in step S6 fails (step S6 / NO), the process returns to step S2 (step S6).

  In step S7, the remote control unit 600 confirms the operating status of the information processing apparatus 20 until the activation request is transmitted. If the information processing apparatus 20 is operating, skip to step S9 described later. You may add the processing to do.

  Note that when the activation request is transmitted in step S7, the remote control unit 600 uses the device information 002 and the authentication information 003 included in the control mail 110 as the information processing apparatus 20 to which the activation request is transmitted. Send to each.

  When the activation request is transmitted in step S7, the information processing apparatus 20 is activated, and the application control unit 200 authenticates the remote control apparatus 60 (step S8).

  In this embodiment, user authentication and device authentication are performed in step S8.

  First, regarding user authentication, in the present embodiment, specifically, the application control unit 200 refers to the authentication information 003 transmitted together with the activation request, and the user ID “001” and the password “Abc” is acquired and collated with previously registered user information (stored in the storage unit 62). Here, the registration of the user whose user ID is “001” is confirmed, and it is confirmed whether or not the corresponding password matches “abc”.

  As described above, the user ID and password are input when the user transmits the control mail 110 from the client terminal 10 to the remote control device 60.

  By the way, in this embodiment, user authentication is performed with the user ID and password, but authentication is performed with biometric information (for example, fingerprint authentication information, face authentication information, iris information, etc.). May be.

  Further, user authentication may be performed using information written on an ID card owned by the user.

  Next, regarding device authentication, in the present embodiment, specifically, the application control unit 200 refers to the device information 002 transmitted together with the activation request and is registered in advance in the information processing apparatus 20. The device information of the client terminal that can access the remote control device 60 is confirmed.

  Note that the device authentication may be executed together with the device authentication for the remote control device 60. That is, when the activation request is transmitted in step S7, the remote control unit 600 also transmits the device information of the remote control device 60, and the application control unit 200 not only performs the device authentication of the client terminal 10, but also Device authentication of the remote control device 60 may also be performed.

  In this way, by authenticating the user of the client terminal 10 or the like, the risk of being remotely operated by an unauthorized mail from a third party who is not a valid user is suppressed.

  Further, in order to suppress the risk of impersonation by an unauthorized user, the risk of remote operation by an unauthorized mail transmitted from a device not registered in the information processing apparatus 20 is suppressed.

  If the authentication is successful in step S8 (step S8 / YES), the application control means 200 transmits a startup completion notification to the remote control device 60 (step S9).

  Note that when the activation completion notification is transmitted in step S9, the application control unit 200 displays device information of the information processing device 20 (device information indicates unique information indicating the information processing device 20. For example, information processing The remote control means 600 refers to the transmitted device information of the information processing apparatus 20, and is registered in advance in the remote control apparatus 60. You may confirm whether it corresponds with the apparatus information of the information processing apparatus connectable with the control apparatus 60. FIG.

  When the activation completion notification is transmitted in step S9, the remote control means 600 receives the activation completion notification and transmits the parameter information held by the control mail 110 to the information processing apparatus 20 as control information (step S9). S10).

  Specifically, position information 004, device identification number 005, and application control information 006 are transmitted as control information.

  When the control information is transmitted in step S10, the application control unit 200 analyzes the transmitted control information (step S11).

  In the present embodiment, referring to FIG. 7, the control information acquired by the application control means 200 is that the position information 004 is “AAA.XXX.YYY.ZZZ”, the device identification number 005 is “D001”, The application identification number is “A001”.

  The storage unit 22 stores an application identification number correspondence table as shown in FIG.

  In the present embodiment, referring to FIG. 6, since the application corresponding to the application identification number “A001” is the remote control unit 210, the application that the user of the client terminal 10 wants to use is the remote control unit 210.

  In the present embodiment, referring to FIG. 6, the table 130 includes the remote control unit 210, the camera control unit 220, and the recording control unit 230. You may have an application.

  When the control information is analyzed in step S11, the remote control means 210 specified by the control information acquires the position information 004 from the control information, and the terminal whose IP address is “AAA.XXX.YYY.ZZZ” A connection request is made via the router 50 and the Internet 1000 (step S12).

  Since the position information 004 of the control mail 110 is the IP address of the client terminal 10, the remote control unit 210 makes a connection request to the client terminal 10.

  When a connection request is made in step S12, the remote control means 100 establishes communication between the client terminal 10 and the information processing apparatus 20 (step S13).

  The remote control unit 100 establishes a VPN (Virtual Private Network) between the client terminal 10 and the information processing apparatus 20, and the client terminal 10 and the information processing apparatus 20 Data to be communicated may be encrypted.

  Here, if the control mail transmitted from the remote control means 100 in step S1 includes A001 and A002 as application control information 006, as shown in FIG. When communication with the information processing apparatus 20 is established, the remote control means 600 transmits control information having A002 as application control information 006 to the information processing apparatus 20 (step S14).

  When the control information is transmitted in step S14, the application control unit 200 analyzes the transmitted control information (step S15).

  In the present embodiment, referring to FIG. 6, since the application corresponding to the application identification number “A002” included in the application control information 006 is the camera control unit 220, the application that the user of the client terminal 10 wants to use is used. Is the camera control means 220.

  When the control information is analyzed in step S15, the camera control means 220 specified by the control information transmits the video of the camera connected to the information processing apparatus 20 (not shown) to the client terminal 10 (step S16). ).

  In step S16, the camera connected to the information processing apparatus 20 from the client terminal 10 may be remotely operated.

  When the application identification number included in the application control information 006 is “A003”, the recording control unit 230 executes a process of recording a predetermined broadcast program.

  When the camera video is transmitted in step S16, the processing of all the applications included in the application control information 006 of the control mail 110 ends.

  In this case, the remote control unit 210 disconnects the connection with the client terminal 10 (step S17).

  When the connection is disconnected in step S17, the application control unit 200 transmits a completion notification to the remote control device 60 and ends the process (step S18).

  Here, after transmitting the completion notification, the application control unit 200 may turn off the information processing apparatus 20.

  Further, after the process of step S18 is completed, the process may return to the process of step S2.

  In the present embodiment, after communication is established in step S13, the remote control means 600 transmits the next control information to the information processing apparatus 20 in step S14. In step S10, the remote control means 600 is transmitted. However, all the control information may be transmitted to the information processing apparatus 20 at a time.

  In this case, the application control unit 200 may execute the applications included in the control information in order.

  Even during the communication between the client terminal 10 and the information processing apparatus 20, the remote control means 600 executes a process for inquiring whether or not there is a new control mail 110 in the mail server 30 in step S2, and performs a new control. When the mail 110 is received, the remote control unit 600 may further transmit control information to the information processing apparatus 20.

  Incidentally, in the present embodiment, the remote control device 60 is a device built in the information processing device 20, but as shown in FIG. 2, the remote control device 60 may be realized as an independent device. In this case, the remote control device 60 and the information processing device 20 may be connected by a network cable.

  In this case, in the remote control means 600, a LAN (Local Area Network) connection board provided in the information processing apparatus 20 may have a remote power-on (Wake-on-LAN) function. Thus, the information processing apparatus 20 can be activated by transmitting a wake-on signal such as a magic packet from the remote control means 600 to the information processing apparatus 20.

  Also, as shown in FIG. 3, a plurality of information processing devices 20 are installed in a work room, an information processing device 70 is installed in a living room, and an information processing device 80 is installed in a child room. Even when the information processing device is installed, the remote control device 60 may be able to make an activation request and a remote operation request to each information processing device.

  Referring to FIG. 7, in the control mail 110, the device identification number requested to be activated can be designated by the device identification number 005. Therefore, the remote control means 600 refers to the table 120 and refers to the designated device identification number. The activation request may be made to the information processing apparatus.

  In this case, information processing devices are illustrated as the information processing device 20, the information processing device 70, and the information processing device 80, but may be a portable information terminal, a game machine, a set top box, a home appliance, or the like. .

  Furthermore, in this embodiment, the home of the user is exemplified as the home, but the home may be an office environment equipped with a LAN environment.

  As described above, it is possible for the user to start up the information processing apparatus 20 from the remote client terminal 10 without setting the port opening or port forwarding setting, which is difficult for beginners in the normal router 50. Become.

  Further, even when the IP address of the router 50 is changed, the information processing apparatus 20 can be activated from the client terminal 10 without performing special settings.

  Next, the operation (second example) of the second embodiment of the present invention will be described. FIG. 9 is a flowchart for explaining the operation of the remote control system according to the second embodiment of the present invention.

  In the first embodiment, the information processing apparatus 20 requests the client terminal 10 to establish a connection (connection). For example, the client terminal 10 accesses in a public facility such as a hotel. In the case of being connected from the point, since the global IP address is not assigned to the client terminal 10 because it passes through the broadband router that connects between the LAN in the public facility and the external network, the remote connection in step S12 Will fail. In the second embodiment, in order to solve the problem in the first embodiment described above, a connection (connection) is established from the client terminal 10 side to the information processing apparatus 20 that is the connection destination.

  The system configuration in the second embodiment may be any of the configurations of the first embodiment shown in FIGS.

  Referring to FIG. 9, the remote control means 100 transmits a control mail 140 to the mail server in order to transmit control information to the remote control device 60 by an operation of the user of the client terminal 10 (step T1).

  At this time, the remote control unit 100 may allow the user to input user authentication information described later.

  At this time, the remote control means 100 may encrypt the control mail 140 and transmit it.

  Here, an example of the content information of the control mail 140 in the embodiment of the present invention is shown in FIG. Referring to FIG. 10, the control mail 140 includes date and time information, device information, and information indicating a device identification number as parameter information.

  The date / time information 011 is information indicating the date / time when the remote control unit 100 transmits the control mail 140.

  The device information 012 indicates unique information indicating the client terminal 10. For example, the MAC address of the client terminal 10 may be used.

  The device identification number 013 is identification information that indicates a device that the user of the client terminal 10 wants to connect from the outside.

  While the remote control device 60 is always operating, the remote control means 600 repeatedly inquires the mail server 30 whether or not the control mail 140 addressed to the remote control device 60 has been received every predetermined time during operation. Perform (step T2).

  When the inquiry is received in step T2, the mail server 30 checks whether the control mail 140 addressed to the remote control device 60 has been received (step T3).

  In step T3, when the mail server 30 confirms that the control mail 140 addressed to the remote control device 60 is received, the mail server 30 remotely controls the control mail 140 addressed to the remote control device 60. It transmits to the apparatus 60 (step T4).

  In the embodiment of the present invention, since the control mail from the client terminal 10 is received in step T1, the mail server 30 transmits the control mail to the remote control device 60.

  When the mail server 30 does not receive the control mail in response to the control mail reception inquiry from the remote control device 60 in step T2, the mail server 30 sends the control mail to the remote control device 60. A message to that effect may be transmitted.

  In step T4, when the control mail 140 is transmitted and the remote control means 600 receives the control mail 140, the remote control means 600 analyzes the control mail 140 (step T5).

  Specifically, when the control mail 140 is encrypted, the remote control means 600 first decrypts the control mail 140. Then, after decryption, the parameter information held by the control mail 140 is acquired.

  If the control mail 140 is transmitted without being encrypted, the decryption process is not performed.

  When the control mail 140 is analyzed in step T5, the remote control means 600 authenticates the client terminal 10 with reference to the parameter of the authentication information (step T6).

  In the embodiment of the present invention, user authentication is performed in step T6.

  First, for user authentication, as in the first embodiment, the user ID and password included in the control mail 140 are acquired and stored in advance as user information (stored in the storage unit 62). ).

  The user ID and the password are input when the user transmits the control mail 140 from the client terminal 10 to the remote control device 60.

  By the way, in this embodiment, user authentication is performed with the user ID and password, but authentication is performed with biometric information (for example, fingerprint authentication information, face authentication information, iris information, etc.). May be.

  Further, user authentication may be performed using information written on an ID card owned by the user.

  Next, regarding the device authentication, in the present embodiment, referring to FIG. 10, specifically, the remote control means 600 refers to the device information 012 of the control mail 140 and registers in advance in the remote control device 60. The device information of the client terminal that can access the remote control device 60 is confirmed.

  In this way, by authenticating the user of the client terminal 10 or the like, the risk of being remotely operated by an unauthorized mail from a third party who is not a valid user is suppressed.

  Moreover, in order to suppress the risk of impersonation by an unauthorized user, the risk of being remotely operated by an unauthorized mail transmitted from a device not registered in the remote control device 60 is suppressed.

  If the authentication is successful at step T6 (step T6 / YES), the remote control means 600 refers to the device identification number 013 of the control mail 140 and transmits an activation request for the device specified by the control mail 140 ( Step T7).

  In the embodiment of the present invention, referring to FIG. 10, the device identification number 013 of the control mail 140 is “D001”.

  A table 150 as shown in FIG. 11 is stored in the storage unit 62, and a device whose device identification number is “D001” is the information processing device 20.

  Accordingly, the remote control unit 600 transmits an activation request to the information processing apparatus 20. At this time, a LAN (Local Area Network) connection board included in the information processing apparatus 20 has a remote power-on (Wake-on-LAN) function. Thus, the information processing apparatus 20 can be activated by transmitting a wake-on signal such as a magic packet from the remote control means 600 to the information processing apparatus 20.

  By the way, after successful authentication of the client terminal 10 in step T6, the remote control unit 600 displays device information of the remote control device 60 (device information indicates unique information indicating the remote control device 60. For example, remote control is performed. The remote control unit 100 refers to the transmitted device information of the remote control device 60 and is registered in advance in the client terminal 10. 10 may be confirmed to match the device information of the information processing apparatus connectable to the device 10.

  If the authentication of the client terminal 10 in step T6 fails (step T6 / NO), the process returns to step T2 (step T6).

  In step T7, the remote control means 600 confirms the operating status of the information processing apparatus 20 until the activation request is transmitted. If the information processing apparatus 20 is operating, skip to step T9 described later. You may add the processing to do.

  In step T7, when the activation request is transmitted, the remote control unit 600 transmits the device information 012 included in the control mail 140 to the information processing apparatus 20 that is the transmission destination of the activation request.

  When the activation request is transmitted in step T7, the information processing apparatus 20 is activated, and the application control unit 200 authenticates the remote control apparatus 60 (step T8). In the embodiment of the present invention, device authentication is performed in step T8.

  When user authentication is performed in step T8, in the embodiment of the present invention, specifically, in the embodiment of the present invention, the application control means 200, together with the activation request, the user ID “001” and the password "Abc" is transmitted, and collation with previously registered user information (stored in the storage unit 62) is performed. Here, the registration of the user whose user ID is “001” is confirmed, and it is confirmed whether or not the corresponding password matches “abc”.

  It is assumed that the user ID and the password are input when the user transmits the control mail 140 from the client terminal 10 to the remote control device 60.

  By the way, in the embodiment of the present invention, user authentication is performed with the user ID and password, but authentication is performed with biometric information (for example, fingerprint authentication information, face authentication information, iris information, etc.). May be performed.

  Further, user authentication may be performed using information written on an ID card owned by the user.

  Next, regarding the device authentication, in the embodiment of the present invention, specifically, the application control unit 200 refers to the device information 012 transmitted together with the activation request and registers in advance in the information processing apparatus 20. The device information of the client terminal that can access the remote control device 60 is confirmed.

  Note that the device authentication may be executed together with the device authentication for the remote control device 60. That is, when the activation request is transmitted in step T7, the remote control unit 600 also transmits the device information of the remote control device 60, and the application control unit 200 not only performs the device authentication of the client terminal 10, but also Device authentication of the remote control device 60 may also be performed.

  In this way, by authenticating the user of the client terminal 10 or the like, the risk of being remotely operated by an unauthorized mail from a third party who is not a valid user is suppressed.

  Further, in order to suppress the risk of impersonation by an unauthorized user, the risk of remote operation by an unauthorized mail transmitted from a device not registered in the information processing apparatus 20 is suppressed.

  If the authentication is successful at step T8 (step T8 / YES), the remote control means 210 transmits a startup completion notification to the remote control device 60 (step T9).

  Note that when the activation completion notification is transmitted in step T9, the remote control unit 210 indicates device information of the information processing device 20 (device information indicates unique information indicating the information processing device 20. For example, information processing The remote control means 600 refers to the transmitted device information of the information processing apparatus 20, and is registered in advance in the remote control apparatus 60. You may confirm whether it corresponds with the apparatus information of the information processing apparatus connectable with the control apparatus 60. FIG.

  When the activation completion notification is transmitted in step T9, the remote control unit 600 receives the activation completion notification, and the remote control unit 600 is connected to connect to the information processing apparatus 20 from the terminal connected to the external network. Information is transmitted to the client terminal 10 (step T10).

  More specifically, the connection information includes information indicating the global IP address of the router 50 and information indicating the port forwarding setting.

  The remote control means 600 transmits connection information transmitted to the client terminal 10 by mail. Further, the remote control means 600 may encrypt the connection information transmitted to the client terminal 10 and transmit it.

  By the way, the port forwarding setting is more specifically a setting for switching the communication destination for each port number in the router 50. Port forwarding is used in a technique called NAPT (Network Address Port Translation). The remote control means 600 can acquire information indicating the global IP address of the router 50 by inquiring the router 50. Further, the remote control unit 600 can acquire information indicating the port forwarding setting for connecting to the information processing apparatus 20 from the router 50 by transmitting a port forwarding setting registration request to the router 50. When the port forwarding setting is registered, the router 50 opens a port for connecting to the information processing apparatus 20 from the client terminal 10 via the router 50.

  The remote control means 100 repeatedly inquires of the mail server 30 whether or not the connection mail 160 including the connection information addressed to the client terminal 10 has been received every predetermined time while the client terminal 10 is operating (step T11). .

  Upon receiving the inquiry at step T11, the mail server 30 checks whether the connection mail 160 addressed to the client terminal 10 has been received (step T12).

  In step T12, when the mail server 30 confirms that the connection mail 160 addressed to the client terminal 10 has been received, the mail server 30 sends the received connection mail 160 addressed to the client terminal 10 to the client terminal 10. Transmit (step T13).

  Here, FIG. 12 shows an example of information included in the connection mail 160 in the embodiment of the present invention. Referring to FIG. 12, the connection mail 160 includes date and time information, device information, information indicating a device identification number, global IP address information, and port information as parameter information.

  The date / time information 021 is information indicating the date / time when the remote control unit 600 transmits the connection mail 160.

  The device information 022 indicates unique information indicating the client terminal 10 included in the control mail 120.

  The device identification number 023 is identification information indicating a device that the user of the client terminal 10 wants to connect to from the outside.

  The IP address 024 is information indicating the global IP address of the router 50.

  The port number 025 is port information registered in the port forwarding by the router 50 in order for the user of the client terminal 10 to connect to a device that the user wants to connect from outside.

  In step T13, when the connection mail 160 is transmitted and the remote control unit 100 receives the connection mail 160, the remote control unit 100 analyzes the connection mail 160 (step T14).

  Specifically, when the connection mail 160 is encrypted, the remote control unit 100 first decrypts the connection mail 160. Then, after decryption, the information included in the connection mail 160 is acquired.

  Note that when the connection mail 160 is transmitted without being encrypted, the decryption process is not performed.

  When the connection mail 160 is analyzed in step T14, the remote control unit 100 refers to the information included in the connection mail 160 and connects to the information processing apparatus 20 (step T15).

  Specifically, the connection mail 160 includes information (IP address 024) indicating the IP address of the router 50 and information (port number 025) indicating the port number. Based on these information, the Internet A connection request is transmitted to the information processing apparatus 20 via 1000 and the router 50.

  When a connection request is made in step T15, the remote control means 210 establishes communication between the client terminal 10 and the information processing apparatus 20 (step T16).

  Through the above processing, communication between the client terminal 10 and the information processing apparatus 20 is established, and the information processing apparatus 20 can be remotely operated from the client terminal 10.

  By the way, in the second embodiment of the present invention, even if the remote control device 60 is realized as a device built in the information processing device 20, as shown in FIG. It may be realized. When implemented as in the example of FIG. 2, the remote control device 60 and the information processing device 20 may be connected by a network cable.

  In this case, in the remote control means 600, the LAN connection board included in the information processing apparatus 20 may have a remote power-on function. Thus, the information processing apparatus 20 can be activated by transmitting a wake-on signal such as a magic packet from the remote control means 600 to the information processing apparatus 20.

  Also, as shown in FIG. 3, a plurality of information processing devices 20 are installed in a work room, an information processing device 70 is installed in a living room, and an information processing device 80 is installed in a child room. Even when the information processing device is installed, the remote control device 60 may be able to make an activation request and a remote operation request to each information processing device.

  Next, an operation for disconnecting a connection between the client terminal 10 and the information processing apparatus 20 will be described with reference to FIG.

  Referring to FIG. 13, the remote control unit 100 transmits a disconnection request to the information processing apparatus 20 by a predetermined operation of the user (specifically, an operation of pressing the disconnect button of the client terminal 10 or the like). (Step T17).

  When a disconnection request is transmitted in step T17, the remote control means 210 disconnects the connection (connection) with the client terminal 10 (step T18).

  At this time, the remote control unit 210 may send a disconnection completion notice to the client terminal 10 by mail.

  When the connection with the client terminal 10 is disconnected in step T18, the remote control unit 210 transmits a disconnection notification to the remote control device 60 (step T19).

  In the remote control device 60, information indicating that the information processing device 20 and the client terminal 10 are connected is managed in a table. For example, in step T10, information indicating that the information processing apparatus 20 and the client terminal 10 are in a connected state at the time when the connection mail 160 is transmitted is recorded in the connection management table 170. It ’s fine. FIG. 14 is a diagram illustrating an example of the connection management table 170.

  When the remote control unit 210 transmits a disconnection notification to the remote control device 60, the remote control unit 210 transmits the device identification number of the own device (information processing device 20).

  When the disconnection notification is received in step T19, the remote control means 600 acquires the device identification number of the information processing apparatus that has transmitted the disconnection notification. Here, since the information processing apparatus 20 is disconnected from the client terminal 10, the device identification number of the information processing apparatus 20 is acquired. The remote control unit 600 cancels the port forwarding setting registered for connecting to the information processing apparatus 20 with respect to the router 50 (step T20).

  In other words, canceling the port forwarding setting may close a port that has been opened for connection to the information processing apparatus 20 from the client terminal 10 via the router 50.

  When the router 50 cancels the port forwarding setting, the router 50 notifies the remote control device 60 that the port forwarding setting has been canceled.

  Through the processing as described above, a connection (connection) can be established and connected from the client terminal side to the information processing apparatus in the home.

  Note that in order to shorten the time required for establishing a connection from the client terminal 10 to the information processing apparatus 20, the connection is established between the client terminal 10 and the information processing apparatus 20 for the first time. The attached global IP address and information indicating the port forward setting for connecting to the information processing apparatus 20 are recorded as information processing apparatus 20 connection information on the client terminal 10 side, and the client terminal is used for the second and subsequent times. When establishing a connection from 10 to the information processing apparatus 20, it is also possible to skip the processing from step T1 to step T14 with reference to the above connection information.

  Since the global IP address on the router 50 side may be changed, the connection from the client terminal 10 to the information processing apparatus 20 is attempted with reference to the above connection information, and the connection is established within a predetermined time. If it cannot be established, it may be mounted so as to return to the processing from step T1 again.

  As described above, it is possible for the user to start up the information processing apparatus 20 from the remote client terminal 10 without setting the port opening or port forwarding setting, which is difficult for beginners in the normal router 50. Become.

  Further, even when the IP address of the router 50 is changed, the information processing apparatus 20 can be activated from the client terminal 10 without performing special settings.

It is a 1st block diagram for demonstrating the remote control system of embodiment of 1st this invention. It is a 2nd block diagram for demonstrating the remote control system of embodiment of 1st this invention. It is a 3rd block diagram for demonstrating the remote control system of embodiment of 1st this invention. It is a flowchart for demonstrating operation | movement of the remote control system of embodiment of 1st this invention. It is a figure for demonstrating the example of the table 120 of embodiment of 1st this invention. It is a figure for demonstrating the example of the table 130 of embodiment of 1st this invention. It is a figure for demonstrating the 1st example of the control mail 110 of embodiment of 1st this invention. It is a figure for demonstrating the 2nd example of the control mail 110 of embodiment of 1st this invention. It is a flowchart for demonstrating the connection operation | movement in the remote control system of embodiment of 2nd this invention. It is a figure for demonstrating the example of the control mail 140 of embodiment of 2nd this invention. It is a figure for demonstrating the example of the table 150 of embodiment of 2nd this invention. It is a figure for demonstrating the example of the connection mail 160 of embodiment of 2nd this invention. It is a flowchart for demonstrating cutting | disconnection operation | movement in the remote control system of embodiment of 2nd this invention. It is a figure for demonstrating the example of the connection management table 170 of embodiment of 2nd this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 Client terminal 11 Control part 20 Information processing apparatus 21 Control part 22 Storage part 30 Mail server 50 Router 60 Remote control apparatus 61 Control part 62 Storage part 70 Information processing apparatus 71 Control part 72 Storage part 80 Information processing apparatus 81 Control part 82 Storage Unit 100 remote control means 110 control mail 120 table 130 table 140 control mail 150 table 160 connection mail 170 connection management table 200 application control means 210 remote control means 220 camera control means 230 recording control means 600 remote control means 700 application control means 710 remote Control means 720 Camera control means 730 Recording control means 800 Application control means 810 Remote control means 820 Camera control means 830 Recording control means 1000 Internet

Claims (14)

A remote control device that retrieves predetermined control information from a public network at predetermined time intervals,
The remote control device connects to the remote control device when authenticating that the predetermined control information is control information transmitted by a valid user based on authentication information included in the predetermined control information. A remote control device for starting a home terminal to be operated. A remote control device that retrieves predetermined control information from a public network at predetermined time intervals,
When the remote control device authenticates that the predetermined control information is control information transmitted from a valid client terminal based on authentication information included in the predetermined control information, the remote control device A remote control device characterized by starting a connected home terminal. A remote control program for a remote control device that retrieves predetermined control information from a public network at predetermined time intervals,
When the remote control program is authenticated based on authentication information included in the predetermined control information, the predetermined control information is control information transmitted by a legitimate user. A remote control program for starting a connected home terminal. A remote control program for a remote control device that retrieves predetermined control information from a public network at predetermined time intervals,
When the remote control program is authenticated based on authentication information included in the predetermined control information, the predetermined control information is control information transmitted from a valid client terminal. A remote control program for starting a home terminal connected to the PC. A home terminal existing in a home, a remote control device capable of accessing a public network connected to the home terminal, a client terminal connected to the public network, and a server connected to the public network A remote control system,
The home terminal transmits predetermined control information requesting remote control of the home terminal to the server,
The remote control device retrieves the predetermined control information from the server at predetermined time intervals, and the predetermined control information is transmitted by a legitimate user based on authentication information included in the predetermined control information. A remote control system that activates a home terminal connected to the remote control device when the control information is authenticated. A home terminal existing in a home, a remote control device capable of accessing a public network connected to the home terminal, a client terminal connected to the public network, and a server connected to the public network A remote control system,
The home terminal transmits predetermined control information requesting remote control of the home terminal to the server,
The remote control device retrieves the predetermined control information from the server at predetermined time intervals, and transmits the predetermined control information from the valid client terminal based on authentication information included in the predetermined control information. A remote control system that activates a home terminal connected to the remote control device when the control information is authenticated. A remote control method by a remote control device for retrieving predetermined control information from a public network at predetermined time intervals,
When the remote control method is authenticated based on the authentication information included in the predetermined control information, the predetermined control information is control information transmitted by a legitimate user. A remote control method characterized by starting a connected home terminal. A remote control method by a remote control device for retrieving predetermined control information from a public network at predetermined time intervals,
When the remote control method is authenticated based on authentication information included in the predetermined control information, the predetermined control information is control information transmitted from a valid client terminal. A remote control method characterized by starting an in-home terminal connected to the PC. Server search means for searching predetermined control information from a server of the public network at predetermined time intervals;
Authentication means for authenticating that the predetermined control information is control information transmitted by a legitimate user based on authentication information included in the predetermined control information searched by the server search means;
An activation unit that activates a home terminal connected to the remote control device when the authentication unit authenticates that the predetermined control information is control information transmitted by a legitimate user. Features remote control device. Server search means for searching predetermined control information from a server of the public network at predetermined time intervals;
Authentication means for authenticating that the predetermined control information is control information transmitted from a valid client terminal, based on authentication information included in the predetermined control information searched by the server search means;
An activation unit that activates a home terminal connected to the remote control device when the authentication unit authenticates that the predetermined control information is control information transmitted from a legitimate client terminal. Remote control device characterized by. A retrieval step for retrieving predetermined control information from a public network server at a predetermined time interval;
An authentication step for determining that the predetermined control information is control information transmitted by a legitimate user based on authentication information included in the predetermined control information searched by the search step;
An activation step of activating a home terminal connected to the remote control device when the authentication step determines that the predetermined control information is control information transmitted by a legitimate user. Remote control program characterized by A retrieval step for retrieving predetermined control information from a public network server at a predetermined time interval;
An authentication step for determining that the predetermined control information is control information transmitted from a legitimate client terminal based on the authentication information included in the predetermined control information searched by the search step;
An activation step of activating an in-home terminal connected to the remote control device when it is determined in the authentication step that the predetermined control information is control information transmitted from a valid client terminal. A remote control program characterized by that. Access means for accessing a public network server at predetermined time intervals;
Server search means for searching predetermined control information from the server accessed by the access means;
Authentication information acquisition means for acquiring authentication information included in the predetermined control information searched by the server search means;
Authentication means for determining that the predetermined control information is control information transmitted by a legitimate user based on the authentication information acquired by the authentication information acquisition means;
An activation unit that activates a home terminal connected to the remote control device when the authentication unit authenticates that the predetermined control information is control information transmitted by a legitimate user. Features remote control device. An access step for accessing a public network server at predetermined time intervals;
A server search step for searching predetermined control information from the accessed server by the access step;
An authentication information acquisition step of acquiring authentication information included in the predetermined control information searched by the server search step;
An authentication step for determining that the predetermined control information is control information transmitted by a legitimate user based on the authentication information acquired by the authentication information acquisition step;
An activation unit that activates a home terminal connected to the remote control device when the predetermined control information is authenticated by the authentication step as control information transmitted by a valid user; Remote control program characterized by

Images